HW Interim Solutions are supporting a large, complex organisation with a significant IT/OT estate in the appointment of an Interim Head of GRC / GRC Lead.
This role will take ownership of the Governance, Risk and Compliance (GRC) framework within a complex and evolving cyber environment, helping to stabilise current activity, address audit requirements and strengthen overall security governance maturity.
Key Responsibilities
* Lead and mature the GRC function across a complex IT/OT environment
* Take ownership of compliance frameworks including CAF (Cyber Assessment Framework) and NIST 2.0 alignment
* Support remediation of current gaps within the existing GRC and assurance landscape
* Prepare for and support upcoming audit activity, ensuring appropriate controls, evidence and governance are in place
* Develop and enhance third-party / supplier security risk management processes
* Strengthen governance structures across cyber risk, assurance, and compliance reporting
* Work closely with security, infrastructure and risk stakeholders to embed consistent control frameworks
* Provide clear reporting and escalation of risk posture to senior leadership
Key Requirements
* Proven experience in GRC, cyber risk, or security governance leadership roles
* Strong understanding of CAF and/or NIST frameworks (NIST 2.0 preferred)
* Experience operating in complex regulated or critical infrastructure environments (IT/OT exposure beneficial)
* Demonstrable experience improving or rebuilding GRC frameworks in challenging or underdeveloped environments
* Strong experience with:
* Third-party / supplier security risk management
* Audit preparation and remediation
* Cyber security assurance frameworks
* Ability to operate in ambiguous environments and quickly bring structure and control
* Strong stakeholder engagement skills across technical and senior business stakeholders
Location: North West (3 days onsite initially, reducing post-impact)
#J-18808-Ljbffr